-

CVE-2023-54184

EPSS 0.04%
Veröffentlicht 30.12.2025 12:08:54
Zuletzt bearbeitet 31.12.2025 20:43:05
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

scsi: target: iscsit: Free cmds before session free

Commands from recovery entries are freed after session has been closed.
That leads to use-after-free at command free or NPE with such call trace:

Time2Retain timer expired for SID: 1, cleaning up iSCSI session.
BUG: kernel NULL pointer dereference, address: 0000000000000140
RIP: 0010:sbitmap_queue_clear+0x3a/0xa0
Call Trace:
 target_release_cmd_kref+0xd1/0x1f0 [target_core_mod]
 transport_generic_free_cmd+0xd1/0x180 [target_core_mod]
 iscsit_free_cmd+0x53/0xd0 [iscsi_target_mod]
 iscsit_free_connection_recovery_entries+0x29d/0x320 [iscsi_target_mod]
 iscsit_close_session+0x13a/0x140 [iscsi_target_mod]
 iscsit_check_post_dataout+0x440/0x440 [iscsi_target_mod]
 call_timer_fn+0x24/0x140

Move cleanup of recovery enrties to before session freeing.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 89f5055f9b0b57c7e7f02e32df95ef401f809b71

Version 988e3a85463d9b6dabc681df3f8f131b23c19953

Status affected

Version < 4621e24c9257c6379343bf0c11b473817cf7edcd

Version 988e3a85463d9b6dabc681df3f8f131b23c19953

Status affected

Version < 1911cca5916b6e106de7afa3ec0a38447158216c

Version 988e3a85463d9b6dabc681df3f8f131b23c19953

Status affected

Version < a7a4def6c7046e090bb10c6d550fdeb487db98ba

Version 988e3a85463d9b6dabc681df3f8f131b23c19953

Status affected

Version < 4ce221d295f53e6c6b835ab33181e735482c9aac

Version 988e3a85463d9b6dabc681df3f8f131b23c19953

Status affected

Version < d8990b5a4d065f38f35d69bcd627ec5a7f8330ca

Version 988e3a85463d9b6dabc681df3f8f131b23c19953

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.12

Status affected

Version < 3.12

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.244

Status unaffected

Version <= 5.10.*

Version 5.10.181

Status unaffected

Version <= 5.15.*

Version 5.15.113

Status unaffected

Version <= 6.1.*

Version 6.1.30

Status unaffected

Version <= 6.3.*

Version 6.3.4

Status unaffected

Version <= *

Version 6.4

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.099

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/89f5055f9b0b57c7e7f02e32df95ef401f809b71

https://git.kernel.org/stable/c/4621e24c9257c6379343bf0c11b473817cf7edcd

https://git.kernel.org/stable/c/1911cca5916b6e106de7afa3ec0a38447158216c

https://git.kernel.org/stable/c/a7a4def6c7046e090bb10c6d550fdeb487db98ba

https://git.kernel.org/stable/c/4ce221d295f53e6c6b835ab33181e735482c9aac

https://git.kernel.org/stable/c/d8990b5a4d065f38f35d69bcd627ec5a7f8330ca

https://nvd.nist.gov/vuln/detail/CVE-2023-54184

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54184

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54184

EUVD